I have my api calls coming from secure server side code. However the rate limit of 40 calls per 10 seconds per IP address is likely to cause issues. To overcome the problem we discussed moving the API call into Javascript on the client. But that will expose the API key.
Any advise here? It seems the way you have limits setup is not great for web development.
Es fehlt ein Film oder eine Serie? Logge dich ein zum Ergänzen.
Diesen Eintrag bewerten oder zu einer Liste hinzufügen?
Kein Mitglied?
Antwort von Travis Bell
am 8. August 2018 um 12:36
Hi there,
Putting it client side is fine. I've seen lots of apps that do this. There isn't a ton of motivation to steal keys since our service is free. Anyone can sign up and grab their own.
Antwort von scottkuhl
am 8. August 2018 um 12:58
That works for me then. Thanks for the quick response.